ClawHub

Native Google Analytics

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed read-only Google Analytics integration, but its OAuth secret and refresh token must be handled carefully.

Install only if you are comfortable letting the agent read GA4 reports for the configured property. Use a dedicated OAuth client and a Google account with minimum needed GA4 access, keep GOOGLE_CLIENT_SECRET and GOOGLE_REFRESH_TOKEN out of source control, chats, logs, CI output, screenshots, and shared terminals, and revoke or rotate the refresh token when no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README instructs users to place a Google OAuth client secret and long-lived refresh token in environment variables without any guidance on secure storage, scope minimization, or avoiding accidental exposure in shell history, process listings, logs, or CI environments. While environment variables are sometimes used operationally, presenting this as the default setup for sensitive credentials increases the risk of credential leakage and unauthorized access to GA4 data.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs users to handle OAuth client secrets and refresh tokens directly on the command line and in environment variables, but does not warn that these values may be exposed through shell history, terminal scrollback, logs, process inspection, or shared sessions. Leakage of a Google refresh token and client credentials can allow persistent unauthorized access to GA4 data available to the authenticated account until the token is revoked or rotated.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The script prints the refresh token directly to stdout, which can expose long-lived credentials through terminal logs, shell history capture, CI logs, screen recording, or shared sessions. Because GA4 refresh tokens can be reused to mint access tokens, disclosure can grant ongoing read access to analytics data until revoked.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal